Re: [Uta] SMTP Over TLS on Port 26 - Implicit TLS Proposal

Franck Martin Mon, 07 Jan 2019 12:34:21 -0800


----- Original Message -----
> From: "Alice Wonder" <[email protected]>
> To: "uta" <[email protected]>
> Sent: Monday, January 7, 2019 6:42:10 AM
> Subject: Re: [Uta] SMTP Over TLS on Port 26 - Implicit TLS Proposal
> 
> Hear hear, and I share the passion too.
> 
> If it were up to me, an RFC would be published deprecating opportunistic
> TLS for SMTP.
> 
> System administrators would have three years, but after that, TLS 1.3+
> would be required for SMTP.
> 
> Reason for TLS 1.3+ is that it requires ciphers with forward secrecy.
> 
> But I know it will never fly. It's what I want though.

I feel the pain too.

There is too much operational inertia in the world of email servers. Upgrades 
take years.

It took years to deprecate RC4. DKIM still uses outdated cyphers, and there are 
no new ones approved (yet) AFAIK.

_______________________________________________
Uta mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/uta

Re: [Uta] SMTP Over TLS on Port 26 - Implicit TLS Proposal

Reply via email to